On May 29, 2025, hackers breached a third-party vendor system used by Farmers Insurance Exchange and its subsidiaries. Farmers was alerted to the suspicious activity on May 30, 2025. Although Farmers did not publicly name the vendor, DataBreaches.net confirmed the breach was part of the broader ShinyHunters/Scattered Spider campaign targeting Salesforce environments. Written notifications were sent to approximately 1,071,172 affected individuals on August 22, 2025. Compromised data includes names, addresses, dates of birth, driver’s license numbers, and the last four digits of Social Security numbers. Farmers Insurance Exchange, Farmers Group Inc., and their subsidiaries were all affected. Affected individuals were offered 24 months of free identity monitoring through Sontiq/CyberScout. The breach is part of ShinyHunters’ broader 2025 campaign targeting dozens of enterprises through Salesforce/Okta vishing.